Saved in:
Bibliographic Details
Main Author: Howard, Austin
Format: Preprint
Published: 2025
Subjects:
Online Access:https://arxiv.org/abs/2505.18156
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866910966409592832
author Howard, Austin
author_facet Howard, Austin
contents Large Language Models (LLMs) are changing the way people interact with technology. Tools like ChatGPT and Claude AI are now common in business, research, and everyday life. But with that growth comes new risks, especially prompt-based attacks that exploit how these models process language. InjectLab is a security framework designed to address that problem. This paper introduces InjectLab as a structured, open-source matrix that maps real-world techniques used to manipulate LLMs. The framework is inspired by MITRE ATT&CK and focuses specifically on adversarial behavior at the prompt layer. It includes over 25 techniques organized under six core tactics, covering threats like instruction override, identity swapping, and multi-agent exploitation. Each technique in InjectLab includes detection guidance, mitigation strategies, and YAML-based simulation tests. A Python tool supports easy execution of prompt-based test cases. This paper outlines the framework's structure, compares it to other AI threat taxonomies, and discusses its future direction as a practical, community-driven foundation for securing language models.
format Preprint
id arxiv_https___arxiv_org_abs_2505_18156
institution arXiv
publishDate 2025
record_format arxiv
spellingShingle InjectLab: A Tactical Framework for Adversarial Threat Modeling Against Large Language Models
Howard, Austin
Cryptography and Security
Artificial Intelligence
Human-Computer Interaction
Large Language Models (LLMs) are changing the way people interact with technology. Tools like ChatGPT and Claude AI are now common in business, research, and everyday life. But with that growth comes new risks, especially prompt-based attacks that exploit how these models process language. InjectLab is a security framework designed to address that problem. This paper introduces InjectLab as a structured, open-source matrix that maps real-world techniques used to manipulate LLMs. The framework is inspired by MITRE ATT&CK and focuses specifically on adversarial behavior at the prompt layer. It includes over 25 techniques organized under six core tactics, covering threats like instruction override, identity swapping, and multi-agent exploitation. Each technique in InjectLab includes detection guidance, mitigation strategies, and YAML-based simulation tests. A Python tool supports easy execution of prompt-based test cases. This paper outlines the framework's structure, compares it to other AI threat taxonomies, and discusses its future direction as a practical, community-driven foundation for securing language models.
title InjectLab: A Tactical Framework for Adversarial Threat Modeling Against Large Language Models
topic Cryptography and Security
Artificial Intelligence
Human-Computer Interaction
url https://arxiv.org/abs/2505.18156